Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/257DEE7E726E11EF99514C71762E951A.roa
File: 257DEE7E726E11EF99514C71762E951A.roa (raw, json)
Hash identifier: +tnCPMUb8uK7fskUbKSVorgSHJ86a/xLxwW81uTUKmo=
Subject key identifier: 37:A3:16:1F:AB:93:05:6B:05:D7:D2:DA:42:A6:F1:57:CD:CB:A1:9B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EE12
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/257DEE7E726E11EF99514C71762E951A.roa
Signing time: Sat 14 Sep 2024 07:51:27 +0000
ROA not before: Sat 14 Sep 2024 07:51:24 +0000
ROA not after: Sat 30 Nov 2024 07:51:24 +0000
asID: 136970
IP address blocks: 154.197.2.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60946 (0xee12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 14 07:51:24 2024 GMT
Not After : Nov 30 07:51:24 2024 GMT
Subject: CN=66e5407f-b4a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ec:9b:33:6f:62:ff:f6:52:d7:61:42:3c:89:
65:84:57:8d:13:5c:d8:c2:ec:e6:fd:94:13:96:e5:
fc:e8:10:e3:00:53:94:66:fa:e0:16:ad:f0:20:c3:
6d:1c:42:05:01:05:f9:6b:c4:47:5f:4f:50:08:3c:
b5:02:f0:61:b2:6e:ba:b8:57:3a:66:29:b8:b3:20:
be:91:c5:88:77:48:34:41:30:dd:ef:fa:d5:1d:bb:
cd:76:de:0d:72:8e:26:9a:a4:07:4a:7e:ec:96:1e:
7f:17:63:69:68:ff:08:36:a0:76:b9:b8:75:50:0f:
cf:fe:f4:4b:10:f4:fe:5e:bd:b4:7d:ac:e2:40:74:
d2:3f:e0:00:3f:5f:c4:bb:ce:cf:e9:7b:0b:d2:a5:
ce:ed:78:3a:de:7d:a1:cb:07:46:00:64:10:7d:a7:
14:e0:96:72:c7:21:75:56:a7:83:e5:60:54:04:a7:
0f:15:1f:70:30:c0:76:04:2c:45:1f:04:e7:25:c3:
84:c4:37:67:d0:5e:b5:cc:15:fa:4c:e3:9e:99:cd:
36:70:bb:99:14:50:fc:14:9c:11:28:a1:b5:2b:63:
2b:de:67:99:53:3e:24:7d:0a:8c:7f:3a:70:58:38:
1d:00:0a:0a:30:7d:d6:ff:6a:b2:41:51:9c:51:9e:
6a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A3:16:1F:AB:93:05:6B:05:D7:D2:DA:42:A6:F1:57:CD:CB:A1:9B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/257DEE7E726E11EF99514C71762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.2.0/23
Signature Algorithm: sha256WithRSAEncryption
b6:7b:d0:29:fa:a5:3a:d6:c3:5d:7d:1f:9e:fa:69:6f:c0:5b:
51:b7:0e:5f:c1:60:df:70:cb:3e:3f:1a:36:39:24:47:de:05:
de:6c:47:5a:75:82:26:22:25:01:6d:ec:39:c2:fa:52:c0:96:
67:7d:fa:ad:ed:a1:a0:b7:11:cb:96:cd:81:50:95:7b:c1:8b:
e0:2a:a0:1c:f9:bd:b6:81:0d:a8:a9:51:8b:ef:15:f6:5e:fe:
65:8a:ac:ba:dd:fa:d2:fa:3a:a2:a2:fd:9e:4b:a0:50:00:ad:
87:48:34:d1:4b:3f:fd:a4:82:33:ac:20:79:23:ae:28:81:f4:
81:27:08:7c:ca:8a:20:11:8a:8e:89:64:34:1f:4c:0c:de:22:
b6:3d:54:b9:37:a5:e9:af:fe:24:b0:11:5c:08:69:f8:de:dc:
1f:40:43:a9:a5:19:c2:ef:d5:0c:10:ca:43:f4:e5:90:e1:84:
df:d6:4f:6f:e1:75:38:1e:e9:f7:22:0f:00:4f:49:24:33:5f:
bb:fc:d7:4e:d4:a2:10:71:ca:43:3c:e5:0e:72:82:42:97:6a:
84:a6:c3:a2:65:95:f6:a7:54:35:b5:54:d9:38:74:ac:92:55:
77:90:4c:75:56:96:b5:64:a0:74:e2:c1:4a:31:c0:94:d1:f9:
57:e0:3c:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:01 2024 by rpki-client on console-fra.rpki-client.org